Add to collection(s) Add to saved
  1. Social Science
  2. Psychology
  3. Conformity

Group Policies

advertisement 
Special Topics in Windows Server 2003: Group Policies
Group Policy Overview .................................................................................................................. 1
Group Policy Capabilities ......................................................................................................... 2
Group Policy Rules and Necessary Permissions ...................................................................... 3
Group Policy Storage Information............................................................................................ 3
Computer and User Configuration Settings.............................................................................. 4
Managing GPOs Using the Group Policy Management Console................................................... 8
Group Policy Management Console System Requirements ..................................................... 8
GPMC Management Tools Integration..................................................................................... 8
Installing the GPMC ................................................................................................................. 8
Opening the GPOE from the AD Object .................................................................................. 9
GPMC Overview ...................................................................................................................... 9
Working with Forests and the GPMC..................................................................................... 10
Working with Domains in the GPMC .................................................................................... 11
Working With Group Policy Objects............................................................................................ 13
Creating GPOs ........................................................................................................................ 13
Modifying the GPO Settings................................................................................................... 13
GPO Scope.............................................................................................................................. 14
GPO Links – Scope of Management ...................................................................................... 14
Linking GPOs ......................................................................................................................... 14
Exercise 1...................................................................................................................................... 16
Group Policy Inheritance ........................................................................................................ 18
View or Modify GPO Link Order and Inheritance Settings ................................................... 19
Security Filtering .................................................................................................................... 22
WMI Filters............................................................................................................................. 23
Delegating Group Policy............................................................................................................... 25
Group Policy Default Permissions.......................................................................................... 25
Delegating GPO Creation Using GPMC ................................................................................ 26
Granting Permissions to an Individual GPO........................................................................... 28
Policy-Related Permissions on SOMs .................................................................................... 31
Granting Creation and Editing of GPOs Using the GPMC .................................................... 32
Group Policy Reports.................................................................................................................... 36
To Generate a GPO Report ..................................................................................................... 36
To Save the Report to the File System.................................................................................... 37
Exercise 2...................................................................................................................................... 39
Administrative Templates – Registry-Based Policy ..................................................................... 41
Administrative Templates and GPMC.................................................................................... 41
Administrative Templates Included With Windows 2003 Server .......................................... 43
Special Topics in Windows Server 2003: Group Policies
www.micros.umsl.edu
Administrative Template File-Processing Information .......................................................... 43
When to Use Registry-Based Policy....................................................................................... 44
True Policies vs. Preferences .................................................................................................. 44
When to Consider Creating Policy Settings............................................................................ 45
When Not to Use Policies ....................................................................................................... 46
Policy Names .......................................................................................................................... 46
Registry-Based Group Policy Best Practices.......................................................................... 46
To Add or Remove an Administrative Template.................................................................... 47
To Display the Administrative Templates View .................................................................... 47
To Filter the View Provided by Administrative Templates.................................................... 48
Folder Redirection ........................................................................................................................ 49
Advantages of Folder Redirection—Especially the My Documents Folder .......................... 49
Folder Redirection Best Practices........................................................................................... 50
Granting the User Exclusive Rights........................................................................................ 51
Policy Removal Considerations with Regard to Folder Redirection ...................................... 51
Folder Redirection and Offline Files ...................................................................................... 52
Folder Redirection Permissions .............................................................................................. 52
Redirect Special Folders to the Same Location for All Users ................................................ 53
Redirect Special Folders to Different Locations Based on Group Membership .................... 56
Troubleshooting Folder Redirection ....................................................................................... 58
GPO Operations ............................................................................................................................ 60
Performing and Managing GPO Backups............................................................................... 60
Performing GPO Restore Operations...................................................................................... 65
Copying GPOs ........................................................................................................................ 68
Importing GPOs ...................................................................................................................... 70
Group Policy Modeling................................................................................................................. 71
Running the Group Policy Modeling Wizard ......................................................................... 71
Group Policy Results Report Node Operations ...................................................................... 73
Generating Group Policy Results Reports .................................................................................... 74
To Create a Group Policy Results Report............................................................................... 74
Exercise 3...................................................................................................................................... 76
Software Installation and Maintenance......................................................................................... 77
Supported Installation File Types ........................................................................................... 78
Creating a Software Distribution Point for the Windows Installer Applications ................... 78
Creating a Software Installation Policy for Windows Installer Files (.msi) ........................... 79
Non-Windows Installer Applications ..................................................................................... 80
Creating a Zap File for Non-Windows Installer Applications................................................ 81
Creating a Software Installation Policy for Non-Windows Installer Applications................. 81
Troubleshooting GPO Software Installation Issues................................................................ 82
Remove Managed Application Using GPOs .......................................................................... 84
Viewing the Properties or Editing Installation Options for Applications............................... 85
Special Topics in Windows Server 2003: Group Policies
www.micros.umsl.edu
Upgrading an Application Using GPOs.................................................................................. 87
To Specify Application Categories for Add or Remove Programs in .................................... 88
Control Panel .......................................................................................................................... 88
To Set the Autoinstall Option for an Application................................................................... 89
To Set Permissions for Group Policy Software Installation ................................................... 89
To Add or Remove Modifications for an Application Package ............................................. 90
Configuring the Software Installation Defaults for a Group Policy Object............................ 91
Using Distributed File Distribution Services to Distribute Software. .......................................... 94
Configuring DFS..................................................................................................................... 94
Software Restriction Policies........................................................................................................ 97
How to Start Software Restriction Policies ............................................................................ 98
Preventing Software Restriction Policies from Applying to Local Administrators ............... 99
Certificate Rules...................................................................................................................... 99
Hash Rules ............................................................................................................................ 101
Internet Zone Rules............................................................................................................... 102
Path Rules ............................................................................................................................. 103
Designated File Types........................................................................................................... 106
Viewing and Modifying the Default Security Level of Software Restriction Policies......... 107
How to Set Trusted Publisher Options.................................................................................. 107
Restricted Groups........................................................................................................................ 108
To Create a Restricted Groups Policy................................................................................... 108
To Copy a Restricted Group from One Template to Another .............................................. 109
Exercise 4.................................................................................................................................... 110
Miscellaneous Information ......................................................................................................... 112
Group Policy Refresh............................................................................................................ 112
Loopback Processing ............................................................................................................ 112
Group Policy Troubleshooting Tools.......................................................................................... 114
GPUpdate.............................................................................................................................. 114
Appendix A: New Features in Windows Server 2003 Group Policies....................................... 116
Appendix B: GPMC Sample Scripts........................................................................................... 117
Appendix C: Raising the Domain and Forest Functional Levels ............................................... 121
Appendix D: Default Windows XP Professional Environment Variables ................................. 122
Appendix E: Solutions to Exercises............................................................................................ 124
Special Topics in Windows Server 2003: Group Policies
www.micros.umsl.edu
Related documents
Group Policy Class Notes
Group Policy Class Notes
OUHSC Group Policy Objects - OUHSC Information Technology
OUHSC Group Policy Objects - OUHSC Information Technology
Deployment Assistance Programme
Deployment Assistance Programme
GPO Training Program Application
GPO Training Program Application
Sharepoint 101
Sharepoint 101
Group Policy: Notes from the Field - Tips, Tricks, and Troubleshooting
Group Policy: Notes from the Field - Tips, Tricks, and Troubleshooting
Group Policies
Group Policies
Administrative Templates Files used to generate the user interface
Administrative Templates Files used to generate the user interface
Module 6: Creating and Configuring Group Policy
Module 6: Creating and Configuring Group Policy
applicant details - BC Cancer Agency
applicant details - BC Cancer Agency
ch07
ch07
Ch07EOCAs
Ch07EOCAs
Download
advertisement